1.5.4 Ensure Automatic Error Reporting is not enabled

Information

The Apport Error Reporting Service automatically generates crash reports for debugging

Apport collects potentially sensitive data, such as core dumps, stack traces, and log files. They can contain passwords, credit card numbers, serial numbers, and other private material.

Solution

Edit /etc/default/apport and add or edit the enabled parameter to equal 0 :

enabled=0

Run the following commands to stop and disable the apport service

# systemctl stop apport.service
# systemctl --now disable apport.service

-- OR --

Run the following command to remove the apport package:

# apt purge apport

See Also

https://workbench.cisecurity.org/benchmarks/13007

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, 800-53|CM-7, CSCv7|9.2

Plugin: Unix

Control ID: cece4a6a268a891fff38d7fd5bf1ea3bad8a5ab70e7002c2b181f47a8c49b080